🔧 Python 3.13 Compatibility & Security Updates

[jansitarski]

This PR upgrades all dependencies to ensure Python 3.13 compatibility and addresses critical security vulnerabilities from Python 3.10.

🚨 Security Motivation

This update addresses the following Critical and High CVEs:

• CVE-2024-8176
• CVE-2025-8194
• CVE-2023-36632
• CVE-2025-4802
• CVE-2025-6965
• CVE-2023-31484
• CVE-2023-52425

📋 Key Changes

🐍 Core Python 3.13 Compatibility Fixes

Package	Before	After	Reason
pandas	2.2.1	2.2.3	Fixes Cython compilation errors with Python 3.13
psycopg2-binary	2.9.9	2.9.10	Adds Python 3.13 pre-built wheels
asyncpg	0.29.0	0.30.0	Removes deprecated Python 3.13 API usage

🔗 Dependency Resolution & Numpy 2.x Support

Package	Before	After	Reason
langchain-mongodb	0.2.0	>=0.4.0	Resolves numpy<2.0.0 conflict
langchain-aws	0.2.1	0.2.31	Adds numpy 2.x compatibility
boto3	1.34.144	1.39.7	Security updates and numpy 2.x support

📦 Package Migration & Security Updates

Package	Before	After	Reason
rapidocr-onnxruntime	1.2.3	Removed	Deprecated, no Python 3.13 support
onnxruntime	-	1.20.1	Modern replacement with active maintenance
rapidocr	-	2.0.6	Actively maintained OCR package
pydantic	2.9.2	2.10.0	Security fixes and performance improvements

🎯 Explicit Numpy Requirement

Added: numpy>=2.1.0

Why numpy was added explicitly:
To ensure langchain-community dependency resolution works correctly with Python 3.13.

🧪 Testing Updates

Updated test_requirements.txt:

• Removed: pytest-postgresql==7.0.1 (caused import errors, tests are mocked)